While business file sharing is an essential part of worker productivity in the mobile and connected realm, it is a commonly misunderstood data security risk. Sure, sending data to and from a storage cloud can be protected in-transit using Secure Sockets Layer or SSL, but how can you protect the data after it arrives once SSL has completed its job or when it’s downloaded by others?

Bona-Share is a cloud service (SaaS) that securely stores files and allows them to be securely shared with others. Bona-Share is a secure alternative to other file sharing systems like DropBox™, Box.com™, Google Drive™, OneDrive™, etc.

With integrated Bona-Isolator™ technology, files stored by the Bona-Share service are kept in a file store that is not accessible via a network. This proprietary technology basically safeguards all (encrypted) files in "cold storage". Even successful hacking of the public facing servers providing this front-end service does not allow or have access to the encrypted file stores. User information contained on the Bonafeyed Key Management Service is fully protected by a SHA-512 cryptographic hash function designed by the United States National Security Agency (NSA).

Multi-factor authentication is required to gain access to Bona-Share. Users are provided a TOTP token for usage during the login process. Because the system is significantly more secure than other systems, Bona-Share guards against nefarious use. To that end, Bona-Share requires accurate Know Your Customer (KYC) information for users of the system. The KYC employed is the same used by banks and online business. All KYC information is securely stored on Bona-Share storage that is inaccessible by any network.

Bona-Share works in conjunction with Bonafeyed’s Key Management Service. 800-bit encryption keys are created and managed by KMS and used to encrypt or decrypt shared files by authorized users. Bona-Share allows customized group sharing, manages an audit log of all files, and supports all standard browsers.

The Bona-Share client employs the Bonafeyed SDK to encrypt files before they leave the user device; therefore, file security is not affected by known nor by not-yet-discovered vulnerabilities in other systems like SSL/TLS. Once protected, the data remains encrypted until it’s displayed on an authorized device. As a result, even when the rest of the infrastructure breaks down or is penetrated by unauthorized users, Bonafeyed data remains secure.